A report conducted by Trustwave reveals that 100% of web applications contain at least one vulnerability. According to the report, a majority of security weaknesses discovered to be contained by web applications are associated with session management.…

Cisco Talos have revealed that nation-state hackers have been exploiting security vulnerabilities contained by Cisco network switches in order to launch cyberattacks on critical infrastructure. According to researchers, attackers have been abusing a…

Researchers from Boston University and Portland State University have developed a method called cryptographic crumpling, which addresses the conflict between the federal government and technology firms about encryption. The method of cryptographic…

The cyberinsurance market continues to grow as companies become more concerned about emerging cyberthreats. However, cyberinsurance carriers still face challenges surrounding the modeling of risks and predicting of outcomes due to the ever-changing…

HoneyBot is a small robot that is designed to protect factories and other industrial facilities from hackers. Researchers at the Georgia Institute of Technology designed the robot to mislead hackers into revealing information upon gaining access to the…

SB 315 is a cybercrime bill that has been passed by the Georgia legislature. This bill is raising serious concerns among security researchers within the state of Georgia. It poses a threat to academic and independent security researchers as it aims to…

Energy Transfer Partners, a Dallas-based pipeline company, was recently hit by a cyberattack. Cybercriminals hacked the pipeline network’s electronic data interchange system, which is used to facilitate oil and gas transactions. This article continues to…

Researchers at Cisco’s Talos Intelligence Group have uncovered vulnerabilities contained by Natus NeuroWorks software, which is used in several electroencephalogram (EEG) devices.  The exploitation of these vulnerabilities could allow attackers to…

A new Mirai-like botnet composed of compromised internet-connected televisions and webcams has been found to be targeting the financial sector. DDoS attacks that have been recently faced by three institutions within the financial sector are believed to…

True entropy randomness is the key to improving the security of IoT devices. Entropy as a Service (EaaS) has been proposed by NIST to deliver quantum entropy sources to IoT devices. This article continues to discuss IoT security challenges, the…

The Department of Defense (DoD) has launched another bug bounty program, which focuses on finding security flaws contained by the Defense Travel System (DTS). DTS is a travel management system used by DoD personnel to book flights, hotels, and more. The…

ACROS Security conducted a survey to which 340 professionals responsible for security patching responded. The survey asked questions regarding the ways in which the process of security patching could be improved. Respondents showed great interest in…